Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/8efc2e-9d96-41a0-b287-9757694d291d/1/tHSVKsBybW50BumwXnQO5sar17g.roa
File: tHSVKsBybW50BumwXnQO5sar17g.roa (raw, json)
Hash identifier: OnfbBFIXdIfqw6rK0o3+Fsa9mu/VebiT8548wWdX1dE=
Subject key identifier: B4:74:95:2A:C0:72:6D:6E:74:06:E9:B0:5E:74:0E:E6:C6:AB:D7:B8
Certificate issuer: /CN=7cd8473e3d9ed423c41e7a858f4c0f0fb80c07ba
Certificate serial: 019425FDC0099B97D649B4E500D1B46B2EF4
Authority key identifier: 7C:D8:47:3E:3D:9E:D4:23:C4:1E:7A:85:8F:4C:0F:0F:B8:0C:07:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fNhHPj2e1CPEHnqFj0wPD7gMB7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/8efc2e-9d96-41a0-b287-9757694d291d/1/tHSVKsBybW50BumwXnQO5sar17g.roa
Signing time: Thu 02 Jan 2025 07:49:34 +0000
ROA not before: Thu 02 Jan 2025 07:49:34 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 56596
IP address blocks: 185.172.80.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:c0:09:9b:97:d6:49:b4:e5:00:d1:b4:6b:2e:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7cd8473e3d9ed423c41e7a858f4c0f0fb80c07ba
Validity
Not Before: Jan 2 07:49:34 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b474952ac0726d6e7406e9b05e740ee6c6abd7b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:4d:91:0e:1d:fc:d3:5f:a7:c1:16:1e:f6:25:
52:57:b5:95:e3:70:63:99:3f:30:79:89:cc:3d:97:
b2:6f:11:3d:e9:68:3a:26:6f:d7:cd:d8:ae:58:23:
75:7e:1c:b6:03:6c:6c:80:66:ed:54:b7:c5:18:cc:
10:8c:49:71:19:81:25:ad:77:92:f7:f9:30:88:d6:
3a:ae:f7:3d:92:85:93:b6:cf:9b:fe:f9:b9:ae:fc:
47:82:ad:67:b4:1b:3b:57:55:65:9c:75:6d:08:23:
37:12:8c:a3:6c:5e:9d:f9:d3:f7:ae:a8:ff:78:a5:
a0:cf:0e:dd:26:75:e6:1b:29:97:a8:5d:3c:9c:ff:
c6:c3:ae:33:39:d1:be:ab:91:77:4e:9c:cc:b9:d0:
7b:02:bb:d3:c1:e4:21:42:07:ef:e3:59:85:5a:fe:
c0:02:d8:91:70:94:fd:82:1e:44:dc:2e:5d:5e:12:
4f:2f:12:a3:65:bb:f3:77:4e:41:d4:c4:30:58:f3:
e7:54:e5:50:c7:df:57:5e:f6:af:d8:b1:ef:cd:87:
68:88:94:fc:22:72:15:97:f3:d2:62:c1:be:2d:52:
7a:6b:90:b4:a2:34:d5:11:22:2b:50:a1:e4:53:b6:
dc:5d:0d:45:aa:1b:a3:83:e5:c5:b2:e1:75:b2:d8:
ad:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:74:95:2A:C0:72:6D:6E:74:06:E9:B0:5E:74:0E:E6:C6:AB:D7:B8
X509v3 Authority Key Identifier:
keyid:7C:D8:47:3E:3D:9E:D4:23:C4:1E:7A:85:8F:4C:0F:0F:B8:0C:07:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fNhHPj2e1CPEHnqFj0wPD7gMB7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/8efc2e-9d96-41a0-b287-9757694d291d/1/tHSVKsBybW50BumwXnQO5sar17g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/8efc2e-9d96-41a0-b287-9757694d291d/1/fNhHPj2e1CPEHnqFj0wPD7gMB7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.80.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:99:8c:53:5b:c9:13:6d:d7:0e:e3:b0:11:93:89:a5:3e:40:
d6:94:07:78:bb:b0:15:27:2a:a8:f3:b3:bf:cc:11:b6:dc:17:
1e:6a:07:67:a7:67:1a:c4:31:0b:2b:07:bd:d6:ff:ec:48:5a:
35:ec:1c:fe:f7:5f:3f:0f:ac:b6:0e:63:1c:55:18:c4:c1:fd:
42:ea:fb:cb:54:9c:4f:83:5c:82:fd:03:a0:8c:7b:ba:dc:f4:
9b:a5:37:cc:fb:4c:a1:fb:a9:65:e3:58:a2:5b:da:e5:c6:05:
38:98:c8:fc:88:c0:15:21:ea:a6:54:03:87:be:96:dd:21:5b:
4d:7f:10:01:2c:71:36:a0:86:b9:2d:68:e3:50:a5:07:59:5a:
c2:2f:8c:f4:e9:8e:e3:be:b4:37:08:88:2d:a3:1c:43:a0:fe:
59:5b:3a:fe:d9:8a:98:c1:50:78:42:94:12:73:e1:de:a2:f0:
87:42:10:ac:3b:5f:1f:a9:03:74:76:23:0a:1e:6b:5a:b3:d4:
fa:22:b3:79:45:a0:7f:b2:19:cc:b2:43:18:49:6f:14:c3:65:
2c:0e:16:e5:9d:eb:57:c2:51:fd:4a:91:da:a5:c7:93:78:98:
5d:c3:d4:b7:36:71:38:8d:dc:83:05:ff:cc:70:aa:2b:80:68:
84:8c:d9:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:49 2025 by rpki-client on console.sobornost.net